Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30003/01YGMUc1t15RdVfEr-gYSjEoRLo.roa
File:                     01YGMUc1t15RdVfEr-gYSjEoRLo.roa (raw, json)
Hash identifier:          70VTxovQCnSsJsWMxRdx/8GBkrMauD3hE5oPol9BwqI=
Subject key identifier:   D3:56:06:31:47:35:B7:5E:51:75:57:C4:AF:E8:18:4A:31:28:44:BA
Certificate issuer:       /CN=EA6B49B0752AD3BE3DD683B8AEEA2205F5AFD279
Certificate serial:       41
Authority key identifier: EA:6B:49:B0:75:2A:D3:BE:3D:D6:83:B8:AE:EA:22:05:F5:AF:D2:79
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6mtJsHUq07491oO4ruoiBfWv0nk.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/01YGMUc1t15RdVfEr-gYSjEoRLo.roa
Signing time:             Fri 17 Mar 2023 13:10:14 +0000
ROA not before:           Fri 17 Mar 2023 13:10:14 +0000
ROA not after:            Thu 14 Mar 2024 01:30:02 +0000
asID:                     0
IP address blocks:        2001:7fa:0:3::/64 maxlen: 128

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 65 (0x41)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EA6B49B0752AD3BE3DD683B8AEEA2205F5AFD279
        Validity
            Not Before: Mar 17 13:10:14 2023 GMT
            Not After : Mar 14 01:30:02 2024 GMT
        Subject: CN=D35606314735B75E517557C4AFE8184A312844BA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f4:c1:c4:cc:7a:9e:ff:18:21:8d:a6:3e:e9:d4:
                    79:93:3b:75:98:ca:33:78:7c:73:7d:0c:d3:13:56:
                    11:9c:5e:49:74:74:4b:fc:7c:3a:51:36:91:43:9d:
                    52:ce:64:7c:3a:b2:3d:f9:63:5e:35:75:86:f0:bf:
                    2a:51:4d:0c:6b:e5:c0:81:66:12:8d:e4:7a:44:49:
                    d9:55:66:05:3a:91:28:17:34:a6:62:fc:28:0b:7c:
                    90:ac:16:12:ca:b4:b6:a7:f0:4b:04:df:ee:04:7e:
                    79:82:3a:4a:d3:61:eb:45:42:74:8f:4f:af:e1:39:
                    24:e1:e9:ef:0f:7c:e0:9a:a0:75:d8:a9:37:50:7e:
                    17:7a:fe:da:38:25:89:0f:d2:dc:7a:a6:21:b0:da:
                    5c:94:37:e2:94:22:b5:a7:59:72:be:60:74:f1:07:
                    06:48:4f:91:08:02:68:ff:87:d3:00:b8:3e:db:29:
                    b0:56:5f:bf:af:78:f7:bc:61:e5:70:43:3a:69:5f:
                    4b:9f:ca:fc:ff:19:fd:00:02:bc:01:32:5b:e9:81:
                    59:66:1c:37:22:b9:88:a2:dc:53:a2:dc:16:a9:fa:
                    d0:d2:36:72:31:3f:1e:75:fe:da:36:d2:9f:00:62:
                    f3:01:8d:9d:5b:bb:8c:03:4f:b7:fc:ee:5c:06:15:
                    c3:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:56:06:31:47:35:B7:5E:51:75:57:C4:AF:E8:18:4A:31:28:44:BA
            X509v3 Authority Key Identifier:
                keyid:EA:6B:49:B0:75:2A:D3:BE:3D:D6:83:B8:AE:EA:22:05:F5:AF:D2:79

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/6mtJsHUq07491oO4ruoiBfWv0nk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6mtJsHUq07491oO4ruoiBfWv0nk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30003/01YGMUc1t15RdVfEr-gYSjEoRLo.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:7fa:0:3::/64

    Signature Algorithm: sha256WithRSAEncryption
         01:d3:58:85:75:98:f3:6e:52:38:3b:51:67:d3:c3:74:ac:9d:
         73:41:3d:bc:9f:c4:4c:e7:c9:12:bc:72:3a:b8:92:94:01:2b:
         da:dd:4f:d5:62:42:81:51:e0:63:8a:70:a0:d5:c8:c1:39:3c:
         cf:e3:f7:d5:2e:ea:56:35:e4:d3:ed:34:72:a6:32:01:16:95:
         45:dd:b5:80:61:25:21:1e:f8:3b:d2:22:04:33:a4:9f:d2:00:
         e3:47:3d:4b:12:fe:6e:0f:66:51:f9:ee:d1:45:89:e5:86:3a:
         ba:7e:da:35:bc:90:62:e1:c0:d2:85:03:a1:aa:da:07:a8:c8:
         4f:3d:ff:f3:eb:cd:f8:0a:dc:cb:ee:88:0c:3f:b5:b1:33:93:
         91:51:91:57:c0:8f:c2:8e:fb:97:95:26:65:5b:43:2a:ac:f0:
         73:74:1a:1e:26:81:8e:51:75:99:10:b3:95:14:f3:76:bd:92:
         bd:96:14:2a:b7:b9:02:e4:55:ad:23:6d:1e:3a:b6:67:ca:4f:
         8c:e6:4e:e4:3e:61:34:81:0e:ec:8e:41:37:4e:42:02:a1:ad:
         86:a9:3a:69:0a:8e:fd:43:8d:aa:0e:1c:18:3c:42:09:01:21:
         06:76:8a:a0:4a:c5:b3:be:f4:f1:02:40:2a:c0:43:ad:23:f3:
         99:18:b9:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org